A security analyst wants to determine whether a suspicious login was successful. Which log type would be most useful for this purpose?1 分AuthenticationSystem NetworkFirewall

1.Question 1What is the primary purpose of logs during incident investigation?1 pointTo improve user experienceTo manage alert volumesTo provide a record of event detailsTo identify and diagnose system issues2.Question 2A security analyst wants to determine whether a suspicious login was successful. Which log type would be most useful for this purpose?1 pointAuthenticationNetworkSystem Firewall3.Question 3In the following log, what action does the log entry record?[ALLOW: wikipedia.org] Source: 192.167.1.1 Friday, 10 June 2022 11:36:121 point192.167.1.1SourceALLOWFriday, 10 June 2022 11:36:124.Question 4Fill in the blank: _____ is the process of examining logs to identify events of interest. 1 pointLog analysisLoggingLog forwarderLog file

Question 5As a security analyst, you are monitoring network traffic and detect a large number of failed login attempts. Which of the following tools would help you investigate this incident? Select two answers.1 pointAn intrusion detection system (IDS)A cryptographic encoderAn antivirus softwareA network protocol analyzer (packet sniffer)

Which of the following types of information can an attacker capture using a sniffing tool?Usernames and passwordsOperating system logsBrowser historyFirewall rules

Examine the following log:LoginEvent[2021/10/13 10:32:08.958711] auth_session_authenticator.cc:304 Regular user login 1Which type of log is this?1 分NetworkApplicationAuthenticationLocation

What can cybersecurity professionals use logs for?1 pointTo analyze data traffic within a network To research and optimize processing capabilities within a networkTo identify vulnerabilities and potential security breachesTo select which security team members will respond to an incident